CVE-2024-33859

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-33859
An issue was discovered in Logpoint before 7.4.0. HTML code sent through logs wasn't being escaped in the "Interesting Field" Web UI, leading to XSS.
CVSS

No CVSS.

References
Link Resource
https://servicedesk.logpoint.com/hc/en-us/articles/18533927651357-XSS-in-Interesting-Fields-in-Logpoint-Web-UI Vendor Advisory
https://servicedesk.logpoint.com/hc/en-us/articles/18533927651357-XSS-in-Interesting-Fields-in-Logpoint-Web-UI Vendor Advisory
https://www.logpoint.com/ Product
https://www.logpoint.com/ Product
Configurations

Configuration 1 (hide)

cpe:2.3:a:logpoint:siem:*:*:*:*:*:*:*:*
History

18 Apr 2025, 12:35

Type Values Removed Values Added
References () https://servicedesk.logpoint.com/hc/en-us/articles/18533927651357-XSS-in-Interesting-Fields-in-Logpoint-Web-UI - () https://servicedesk.logpoint.com/hc/en-us/articles/18533927651357-XSS-in-Interesting-Fields-in-Logpoint-Web-UI - Vendor Advisory
References () https://www.logpoint.com/ - () https://www.logpoint.com/ - Product
CPE cpe:2.3:a:logpoint:siem:*:*:*:*:*:*:*:*
First Time Logpoint siem
Logpoint

07 May 2024, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-05-07 17:15

Updated : 2025-04-18 12:35

NVD link : CVE-2024-33859

Mitre link : CVE-2024-33859

JSON object : View

Products Affected

logpoint

  • siem
CWE

No CWE.